Re: [tpm2] tpm2 Digest, Vol 23, Issue 18
by Oliver, Dario N
Hello Bill,
is 3.2 going to be taken from current master branch?
Also, during the time that I evaluated the tpm2_checkquote, tpm2_quote, tpm2_createek, tpm2_createak, I noticed that several of the manpages, options and examples are not 100% accurate, as described in this issues:
https://github.com/tpm2-software/tpm2-tools/issues/1488 (tpm2_checkquote)
https://github.com/tpm2-software/tpm2-tools/issues/1042 (overall manpages audit)
Could those manpages be fixed for this release?
Nico
-----Original Message-----
From: tpm2 [mailto:tpm2-bounces@lists.01.org] On Behalf Of tpm2-request(a)lists.01.org
Sent: Thursday, May 30, 2019 12:00 PM
To: tpm2(a)lists.01.org
Subject: tpm2 Digest, Vol 23, Issue 18
Send tpm2 mailing list submissions to
tpm2(a)lists.01.org
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.01.org/mailman/listinfo/tpm2
or, via email, send a message with subject or body 'help' to
tpm2-request(a)lists.01.org
You can reach the person managing the list at
tpm2-owner(a)lists.01.org
When replying, please edit your Subject line so it is more specific than "Re: Contents of tpm2 digest..."
Today's Topics:
1. tpm2-tools: 3.2 release (Roberts, William C)
----------------------------------------------------------------------
Message: 1
Date: Thu, 30 May 2019 15:43:33 +0000
From: "Roberts, William C" <william.c.roberts(a)intel.com>
To: "tpm2(a)lists.01.org" <tpm2(a)lists.01.org>
Subject: [tpm2] tpm2-tools: 3.2 release
Message-ID:
<476DC76E7D1DF2438D32BFADF679FC5649D84425(a)ORSMSX106.amr.corp.intel.com>
Content-Type: text/plain; charset="us-ascii"
I am getting ready to run a 3.2 release with the following changelog:
3.2.0 - next
tpm2_changeauth: Support changing platform hierarchy auth.
tpm2_flushcontext: Introduce new tool for flushing handles from the TPM.
tpm2_checkquote: Introduce new tool for checking validity of quotes.
tpm2_quote: Add ability to output PCR values for quotes.
tpm2_makecredential: add support for executing tool off-TPM.
tpm2_pcrreset: introduce new tool for resetting PCRs.
tpm2_quote: Fix AK auth password not being used.
Does anyone else have anything they *really* need fixed before I start running RC's?
Bill
------------------------------
Subject: Digest Footer
_______________________________________________
tpm2 mailing list
tpm2(a)lists.01.org
https://lists.01.org/mailman/listinfo/tpm2
------------------------------
End of tpm2 Digest, Vol 23, Issue 18
************************************
2 years, 11 months
tpm2-tools: 3.2 release
by Roberts, William C
I am getting ready to run a 3.2 release with the following changelog:
3.2.0 - next
tpm2_changeauth: Support changing platform hierarchy auth.
tpm2_flushcontext: Introduce new tool for flushing handles from the TPM.
tpm2_checkquote: Introduce new tool for checking validity of quotes.
tpm2_quote: Add ability to output PCR values for quotes.
tpm2_makecredential: add support for executing tool off-TPM.
tpm2_pcrreset: introduce new tool for resetting PCRs.
tpm2_quote: Fix AK auth password not being used.
Does anyone else have anything they *really* need fixed before I start running RC's?
Bill
2 years, 11 months
Re: [tpm2] tpm2 Digest, Vol 23, Issue 10
by Desai, Imran
Hi Narashimman, This information is available in a wiki here: https://github.com/tpm2-software/tpm2-tools/wiki/Dependency-Matrix
Please create an issue to update the wiki if you do not find the information there. Thanks.
________________________________________
From: tpm2 [tpm2-bounces(a)lists.01.org] on behalf of tpm2-request(a)lists.01.org [tpm2-request(a)lists.01.org]
Sent: Monday, May 20, 2019 12:00 PM
To: tpm2(a)lists.01.org
Subject: tpm2 Digest, Vol 23, Issue 10
Send tpm2 mailing list submissions to
tpm2(a)lists.01.org
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.01.org/mailman/listinfo/tpm2
or, via email, send a message with subject or body 'help' to
tpm2-request(a)lists.01.org
You can reach the person managing the list at
tpm2-owner(a)lists.01.org
When replying, please edit your Subject line so it is more specific
than "Re: Contents of tpm2 digest..."
Today's Topics:
1. Regarding TPM2 tool version (Narashimman Srinivasan)
----------------------------------------------------------------------
Message: 1
Date: Mon, 20 May 2019 13:31:36 +0530
From: Narashimman Srinivasan <msrinivasan(a)mvista.com>
To: tpm2(a)lists.01.org
Subject: [tpm2] Regarding TPM2 tool version
Message-ID:
<CAMh_iofwBxY+FtJwyX55Gs-nm2fE2G3h523c3HU=M2keXW-cOw(a)mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Hi
Planning to use following TPM2 tool version in my Yocto build:
https://github.com/tpm2-software/tpm2-tools/releases/tag/3.1.4
Please let know or where to find dependency versions match information for
subsequent tools below :
tpm2-tss - https://github.com/tpm2-software/tpm2-tss.git
tpm2-abrmd - https://github.com/tpm2-software/tpm2-abrmd.git
Also let me know Linux version matches for tpm2-tool version : 3.1.4
Thank & Regards
Manjunatha Srinivasan N
2 years, 11 months
Re: [tpm2] tpm2 Digest, Vol 23, Issue 13
by Desai, Imran
An example of how policyauthorize or wildcard policy is setup - https://github.com/tpm2-software/tpm2-tools/blob/master/man/tpm2_policyau...
Imran Desai
On May 24, 2019, at 1:18 AM, "tpm2-request(a)lists.01.org<mailto:tpm2-request@lists.01.org>" <tpm2-request(a)lists.01.org<mailto:tpm2-request@lists.01.org>> wrote:
Send tpm2 mailing list submissions to
tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.01.org/mailman/listinfo/tpm2
or, via email, send a message with subject or body 'help' to
tpm2-request(a)lists.01.org<mailto:tpm2-request@lists.01.org>
You can reach the person managing the list at
tpm2-owner(a)lists.01.org<mailto:tpm2-owner@lists.01.org>
When replying, please edit your Subject line so it is more specific
than "Re: Contents of tpm2 digest..."
Today's Topics:
1. Wildcard policies for NVindexes (Tommaso Corda)
2. Re: Wildcard policies for NVindexes (Fuchs, Andreas)
3. R: Wildcard policies for NVindexes (Tommaso Corda)
4. Re: Wildcard policies for NVindexes (Fuchs, Andreas)
----------------------------------------------------------------------
Message: 1
Date: Fri, 24 May 2019 08:03:30 +0000
From: Tommaso Corda <tommasocorda(a)hotmail.it<mailto:tommasocorda@hotmail.it>>
To: "tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>" <tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>>
Subject: [tpm2] Wildcard policies for NVindexes
Message-ID:
<AM6PR10MB2134C5728B318FEE1B27A147AE020(a)AM6PR10MB2134.EURPRD10.PROD.OUTLOOK.COM<mailto:AM6PR10MB2134C5728B318FEE1B27A147AE020@AM6PR10MB2134.EURPRD10.PROD.OUTLOOK.COM>>
Content-Type: text/plain; charset="us-ascii"
Hello everyone.
Can anybody explain me how to use wildcard policies to create a NVindex and how to use a wildcard policy to access that NVindex?
Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.01.org/pipermail/tpm2/attachments/20190524/d00eba41/attachme...>
------------------------------
Message: 2
Date: Fri, 24 May 2019 08:05:00 +0000
From: "Fuchs, Andreas" <andreas.fuchs(a)sit.fraunhofer.de<mailto:andreas.fuchs@sit.fraunhofer.de>>
To: Tommaso Corda <tommasocorda(a)hotmail.it<mailto:tommasocorda@hotmail.it>>, "tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>"
<tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>>
Subject: Re: [tpm2] Wildcard policies for NVindexes
Message-ID:
<9F48E1A823B03B4790B7E6E69430724D0163A458F6(a)exch2010c.sit.fraunhofer.de<mailto:9F48E1A823B03B4790B7E6E69430724D0163A458F6@exch2010c.sit.fraunhofer.de>>
Content-Type: text/plain; charset="iso-8859-1"
Could you explain to me, what a Wildcard policy supposingly is ?
I've never heard of this.
________________________________
From: tpm2 [tpm2-bounces(a)lists.01.org<mailto:tpm2-bounces@lists.01.org>] on behalf of Tommaso Corda [tommasocorda(a)hotmail.it<mailto:tommasocorda@hotmail.it>]
Sent: Friday, May 24, 2019 10:03
To: tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>
Subject: [tpm2] Wildcard policies for NVindexes
Hello everyone.
Can anybody explain me how to use wildcard policies to create a NVindex and how to use a wildcard policy to access that NVindex?
Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.01.org/pipermail/tpm2/attachments/20190524/4e7d5118/attachme...>
------------------------------
Message: 3
Date: Fri, 24 May 2019 08:07:56 +0000
From: Tommaso Corda <tommasocorda(a)hotmail.it<mailto:tommasocorda@hotmail.it>>
To: "Fuchs, Andreas" <andreas.fuchs(a)sit.fraunhofer.de<mailto:andreas.fuchs@sit.fraunhofer.de>>,
"tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>" <tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>>
Subject: [tpm2] R: Wildcard policies for NVindexes
Message-ID:
<AM6PR10MB2134B29444A9E702DE553757AE020(a)AM6PR10MB2134.EURPRD10.PROD.OUTLOOK.COM<mailto:AM6PR10MB2134B29444A9E702DE553757AE020@AM6PR10MB2134.EURPRD10.PROD.OUTLOOK.COM>>
Content-Type: text/plain; charset="iso-8859-1"
https://ebrary.net/24814/computer_science/flexible_wild_card_policy
Flexible (Wild Card) Policy - A Practical Guide to TPM 2.0<https://ebrary.net/24814/computer_science/flexible_wild_card_policy>
One major problem with the TPM 1.2 design was the brittleness of PCRs. When an entity was locked to a PCR, it was not possible to change the required values of the PCR after it was so locked.
ebrary.net<http://ebrary.net>
________________________________
Da: Fuchs, Andreas <andreas.fuchs(a)sit.fraunhofer.de<mailto:andreas.fuchs@sit.fraunhofer.de>>
Inviato: venerd? 24 maggio 2019 10:05
A: Tommaso Corda; tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>
Oggetto: RE: Wildcard policies for NVindexes
Could you explain to me, what a Wildcard policy supposingly is ?
I've never heard of this.
________________________________
From: tpm2 [tpm2-bounces(a)lists.01.org<mailto:tpm2-bounces@lists.01.org>] on behalf of Tommaso Corda [tommasocorda(a)hotmail.it<mailto:tommasocorda@hotmail.it>]
Sent: Friday, May 24, 2019 10:03
To: tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>
Subject: [tpm2] Wildcard policies for NVindexes
Hello everyone.
Can anybody explain me how to use wildcard policies to create a NVindex and how to use a wildcard policy to access that NVindex?
Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.01.org/pipermail/tpm2/attachments/20190524/7342c438/attachme...>
------------------------------
Message: 4
Date: Fri, 24 May 2019 08:17:44 +0000
From: "Fuchs, Andreas" <andreas.fuchs(a)sit.fraunhofer.de<mailto:andreas.fuchs@sit.fraunhofer.de>>
To: Tommaso Corda <tommasocorda(a)hotmail.it<mailto:tommasocorda@hotmail.it>>, "tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>"
<tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>>
Subject: Re: [tpm2] Wildcard policies for NVindexes
Message-ID:
<9F48E1A823B03B4790B7E6E69430724D0163A45911(a)exch2010c.sit.fraunhofer.de<mailto:9F48E1A823B03B4790B7E6E69430724D0163A45911@exch2010c.sit.fraunhofer.de>>
Content-Type: text/plain; charset="iso-8859-1"
Just a recommendation for wording:
WildCard Policy is not official, only because someone used it in some book.
Just call it "PolicyAuthorize" as that's the commands name.
For PolicyAuthorize you will find some examples in the man-pages of the tools:
https://github.com/tpm2-software/tpm2-tools/blob/61bbbb6444ea379f94bec46a...
If you need more, search TPM-Specification Part 1 or the Internets for "PolicyAuthorize".
________________________________
From: Tommaso Corda [tommasocorda(a)hotmail.it<mailto:tommasocorda@hotmail.it>]
Sent: Friday, May 24, 2019 10:07
To: Fuchs, Andreas; tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>
Subject: R: Wildcard policies for NVindexes
https://ebrary.net/24814/computer_science/flexible_wild_card_policy
Flexible (Wild Card) Policy - A Practical Guide to TPM 2.0<https://ebrary.net/24814/computer_science/flexible_wild_card_policy>
One major problem with the TPM 1.2 design was the brittleness of PCRs. When an entity was locked to a PCR, it was not possible to change the required values of the PCR after it was so locked.
ebrary.net<http://ebrary.net>
________________________________
Da: Fuchs, Andreas <andreas.fuchs(a)sit.fraunhofer.de<mailto:andreas.fuchs@sit.fraunhofer.de>>
Inviato: venerd? 24 maggio 2019 10:05
A: Tommaso Corda; tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>
Oggetto: RE: Wildcard policies for NVindexes
Could you explain to me, what a Wildcard policy supposingly is ?
I've never heard of this.
________________________________
From: tpm2 [tpm2-bounces(a)lists.01.org<mailto:tpm2-bounces@lists.01.org>] on behalf of Tommaso Corda [tommasocorda(a)hotmail.it<mailto:tommasocorda@hotmail.it>]
Sent: Friday, May 24, 2019 10:03
To: tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>
Subject: [tpm2] Wildcard policies for NVindexes
Hello everyone.
Can anybody explain me how to use wildcard policies to create a NVindex and how to use a wildcard policy to access that NVindex?
Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.01.org/pipermail/tpm2/attachments/20190524/d414d497/attachme...>
------------------------------
Subject: Digest Footer
_______________________________________________
tpm2 mailing list
tpm2(a)lists.01.org<mailto:tpm2@lists.01.org>
https://lists.01.org/mailman/listinfo/tpm2
------------------------------
End of tpm2 Digest, Vol 23, Issue 13
************************************
2 years, 11 months
Wildcard policies for NVindexes
by Tommaso Corda
Hello everyone.
Can anybody explain me how to use wildcard policies to create a NVindex and how to use a wildcard policy to access that NVindex?
Thanks.
2 years, 11 months